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CLAIMS 



1. A storage device including a trusted clock, a memory, a time- 
stamper and a digital signer, the device being adapted in use to store to said 
memory data that has been time-stamped by said time-stamper, with a time 
obtained from said trusted clock, and digitally signed with a digital 
signature by said digital signer. 

2. A device as claimed in claim 1 wherein said memory comprises 
either of the fbilowing: a disc, a t^>e 4rive. 

3. A device as claimed in claim 1 wherein said memory is a long term 
storage medium. 

4. A device as claimed in claim 1 wherein said memory is removable 
from the storage device, 

5. A device as claimed in claim 1 wherein said device comprises a part 
of any one of the following: a disc drive, a tape drive, a disc array, a disc 
sub-system, a tape library, an optical jukebox, a disaggregated storage 
network, a storage area network, network attached storage. 

6. A device as claimed in claim 1 wherein said trusted clock is 
provided by a card adapted to be plugged into said device. 

7. A device as claimed in claim 1 wherein said trusted clock is an 
encapsulated hardwired component. 

8. A device as claimed in claim 1 wherein there is a controller, with 
associated controller logic, said controller logic being protected by a 
trusted mechanism to prevent unauthorised and unnoticed alteration of said 
controller logic. 
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9. A device as claimed in claim 1 wherein said device has a controller 
adapted to do at least one of the following: identify whether data received 
by said device has a flag indicative as a command to time-stamp flagged 
data, identify whether command language used to control operation of said 
device has a marker indicative as a command to time-stamp selected data, 
check whether the time-stamper is set to a time-stamp mode to time-stamp 
received data, or not, so set so as not to time-stamp data. 

10. A device as claimed ia claim 1 fi»tb©r comprising a clock-correctiiig 
input adapted to input a trusted correction signal to said trusted clock to 
correct said clock. 



lyt 11. A device as claimed in claim 1 which has no significant functional 

■i 15 capabihty beyond that claimed in claim 1 and which is incapable of general 

p5 computational activities. 

55 12. A storage device including a trusted clock; a long term memory 

^"^^ device; a time-stamper; a digital signing unit; and a controller, with 

20 associated controller logic: said device being adapted, in use, to store to 
said memory device data that has been time-stamped by said time-stamper 
with a time obtained from said trusted clock and digitally signed with a 
digital signature by said digital signing unit, and said controller logic being 
protected by a trusted mechanism to prevent, in use, unauthorised alteration 
25 of said controller logic. 

13. A storage device including trusted clock means for non-repudiably 
measuring time, data storage means for storing data, time-stamping means 
for stamping data with a non-repudiable time supplied by said trusted clock 
30 means, digital signing means for signing data digitally such that said data 
storage means stores data that has been time-stamped by said time- 
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stamping means and signed with a digital signature by said digital signing 
means, in use. 



A method of storing secure time-stamped data comprising the steps 

(i) providing a data storage device; 

(ii) providing a trusted clock at said data storage device; 

(iii) time-stamping data at said data storage device; 

(iv) creating a digital signature dep«ident upon content of said 
data £md time-stoss^; aad 

(v) storing said data and associated said signature on a recording 
medium of said data storage device. 

A method as claimed in claim 14 wherein said data storage device 
15 comprises a long-term data storage medium and wherein time-stamped, 
signed data is stored on said long-term data storage medium. 

16. A method as claimed in claim 14 wherein a controller is used to 
control operations (iii) to (v), and wherein said controller is controlled by 

20 control logic, and wherein said control logic is protected by a trusted 
mechanism which ensures that said control logic has not been modified 
from what it should be. 

17. A method as claimed in claim 14 wherein data received by said data 
25 storage device is checked for a flag indicative of instructions to time-stamp 

all of or a selected part of said data, and said data, or the part of said data, 
is time-stamped accordingly. 

18. A method as claimed in claim 14 wherein a command language of a 
30 controller is checked for instructions to time-stamp all, or a selected part, 

or parts, of said data. 
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19. A method as claimed in claim 14 wherein said device is controlled 
by a controller which has a time-stamp setting in which the time-stamper 
time-stamps said data and a non time-stamping setting in which the time- 
stamper does not time-stamp said data, and in which a check is made as to 
the setting of said controller prior to said time-stamping, or not, of received 
said data. 

20. A method as claimed in claim 14 comprising transmitting said data 
to said device over the Internet or other public network, and time-stamping 
and signing sai^ tiata, and storing said time-stamped signed data, within 
said data storage device without transmitting said signed data back over the 
Internet or other public network. 

21. A method as claimed in claim 14 wherein said data &at is time- 
stamped is a digest of a larger data record. 

22. A method of storing secure time-stamped data comprising the steps 
of: 

(i) providing a data storage device having a long term data 
storage medium; 

(ii) providing a trusted clock at said data storage device; 

(iii) providing a controller at said storage device, with associated 
control logic that is protected by a trusted mechanism; 

(iv) time-stamping said data at said data storage device, under the 
control of said controller; 

(v) creating a digital signature dependent upon content of said 
data and time-stamp, under the control of said controller; and 

(vi) storing said data and associated signature on said long term 
data storage mediimi of the data storage device, imder the control of 
said controller. 
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23. A network having a data storage device adapted to time-stamp and 
store data that it receives from said network without transmitting time- 
stamped data across said network. 

24. Software, firmware or a compnter readable medium having a 
program recorded thereupon which, in use, causes a processor of a data 
storage device running a program to execute a process comprising the st^s 
of: 

i) time-stamping data at said data storage device; 

ii) creatiflg a 4igital sigaatare d^endent upon content of said data and 
time-stamp; and 

iii) storing said data and associated said signature on a recording 
medium of said data storage device. 

25. Software, firmware or a computer readable medium having a 
program recorded thereupon which when operable upon a control processor 
of a data storage device causes the device to operate as a device including a 
trusted clock, a memory, a time-stamper and a digital signer, the device 
being adapted, in use, to store to said memory data that has been time- 
stamped by said time-stamper, with a time obtained from said trusted clock 
and digitally signed with.a digital signature by said digital signer. 

26. A method of storing time-stamper data on a network comprising 
transmitting the data from a first, remote, network-attached device to a data 
storage device, the data storage device including a trusted clock a memory, 
a time-stamper and a digital signer, the device being adapted, in use, to 
store to said memory data that has been time-stamped by said time-stamper, 
with a time obtained from said trusted clock and digitally signed with a 
digital signature by said digital signer, in the absence of transmitting time- 
stamped data back to said remote device for storage. 



